City: Beijing
Region: Beijing
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 8.128.0.0 - 8.191.255.255
CIDR: 8.128.0.0/10
NetName: APNIC
NetHandle: NET-8-128-0-0-1
Parent: NET8 (NET-8-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2018-04-24
Updated: 2018-04-24
Ref: https://rdap.arin.net/registry/ip/8.128.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '8.128.0.0 - 8.159.255.255'
% Abuse contact for '8.128.0.0 - 8.159.255.255' is 'abuse@alibaba-inc.com'
inetnum: 8.128.0.0 - 8.159.255.255
netname: ALICLOUD
descr: Aliyun Computing Co.LTD
country: CN
admin-c: ASEP1-AP
tech-c: ASEP1-AP
abuse-c: AA1926-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-ASEPL-SG
mnt-irt: IRT-ASEPL-SG
last-modified: 2021-04-14T01:11:45Z
source: APNIC
irt: IRT-ASEPL-SG
address: 1 Raffles Place
e-mail: abuse@alibaba-inc.com
abuse-mailbox: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
auth: # Filtered
remarks: abuse@alibaba-inc.com was validated on 2025-12-09
mnt-by: MAINT-ASEPL-SG
last-modified: 2025-12-09T07:58:21Z
source: APNIC
role: ABUSE ASEPLSG
country: ZZ
address: 1 Raffles Place
phone: +000000000
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: AA1926-AP
remarks: Generated from irt object IRT-ASEPL-SG
remarks: abuse@alibaba-inc.com was validated on 2025-12-09
abuse-mailbox: abuse@alibaba-inc.com
mnt-by: APNIC-ABUSE
last-modified: 2025-12-09T07:58:36Z
source: APNIC
role: Alibabacom Singapore E-Commerce Private Limited a
address: 1 Raffles Place #59-00 One Raffles Place, Tower One Singapore, Singapore
country: SG
phone: +86-571-85022088
fax-no: +86-571-85022088
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: ASEP1-AP
mnt-by: MAINT-ASEPL-SG
last-modified: 2025-07-01T06:25:24Z
source: APNIC
% Information related to '8.145.53.0/24AS37963'
route: 8.145.53.0/24
origin: AS37963
descr: Alibaba.com Singapore E-Commerce Private Limited
8 Shenton Way, #45-01 AXA Tower, Singapore 068811
mnt-by: MAINT-ASEPL-SG
last-modified: 2020-02-25T09:56:27Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 8.145.53.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19452
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;8.145.53.115. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026050600 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 22:31:02 CST 2026
;; MSG SIZE rcvd: 105Host 115.53.145.8.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 115.53.145.8.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 182.61.176.220 | attack | Invalid user rxc from 182.61.176.220 port 51616 |
2020-03-29 15:53:40 |
| 188.87.101.119 | attackspambots | $f2bV_matches |
2020-03-29 15:54:41 |
| 189.18.243.210 | attackbots | Repeated brute force against a port |
2020-03-29 16:07:39 |
| 93.5.62.61 | attackbotsspam | $f2bV_matches |
2020-03-29 16:08:10 |
| 198.98.52.100 | attackbotsspam | Mar 29 09:41:34 ks10 sshd[1305891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.98.52.100 Mar 29 09:41:36 ks10 sshd[1305891]: Failed password for invalid user admin from 198.98.52.100 port 56866 ssh2 ... |
2020-03-29 16:11:21 |
| 218.90.138.98 | attackspambots | Invalid user yof from 218.90.138.98 port 15159 |
2020-03-29 15:59:21 |
| 114.255.40.139 | attackbotsspam | Mar 29 08:36:24 host sshd[4225]: Invalid user mpi from 114.255.40.139 port 8530 ... |
2020-03-29 16:05:16 |
| 51.15.76.119 | attack | Mar 29 08:16:39 marvibiene sshd[21093]: Invalid user tnk from 51.15.76.119 port 36190 Mar 29 08:16:39 marvibiene sshd[21093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.76.119 Mar 29 08:16:39 marvibiene sshd[21093]: Invalid user tnk from 51.15.76.119 port 36190 Mar 29 08:16:41 marvibiene sshd[21093]: Failed password for invalid user tnk from 51.15.76.119 port 36190 ssh2 ... |
2020-03-29 16:17:34 |
| 91.225.77.52 | attack | Mar 29 10:04:00 OPSO sshd\[1200\]: Invalid user mobyudal from 91.225.77.52 port 38130 Mar 29 10:04:00 OPSO sshd\[1200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.225.77.52 Mar 29 10:04:02 OPSO sshd\[1200\]: Failed password for invalid user mobyudal from 91.225.77.52 port 38130 ssh2 Mar 29 10:08:03 OPSO sshd\[2308\]: Invalid user xi from 91.225.77.52 port 45034 Mar 29 10:08:03 OPSO sshd\[2308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.225.77.52 |
2020-03-29 16:09:52 |
| 62.234.149.173 | attackspam | 2020-03-29T05:53:13.065368vps751288.ovh.net sshd\[15498\]: Invalid user kentan from 62.234.149.173 port 42338 2020-03-29T05:53:13.075520vps751288.ovh.net sshd\[15498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.149.173 2020-03-29T05:53:14.983480vps751288.ovh.net sshd\[15498\]: Failed password for invalid user kentan from 62.234.149.173 port 42338 ssh2 2020-03-29T05:57:37.780193vps751288.ovh.net sshd\[15516\]: Invalid user zfb from 62.234.149.173 port 34760 2020-03-29T05:57:37.790422vps751288.ovh.net sshd\[15516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.149.173 |
2020-03-29 16:05:59 |
| 68.183.102.117 | attack | Unauthorized connection attempt detected from IP address 68.183.102.117 to port 3306 |
2020-03-29 15:49:59 |
| 112.197.2.114 | attack | Mar 29 08:43:12 server sshd\[10400\]: Invalid user nya from 112.197.2.114 Mar 29 08:43:12 server sshd\[10400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.2.114 Mar 29 08:43:14 server sshd\[10400\]: Failed password for invalid user nya from 112.197.2.114 port 36676 ssh2 Mar 29 08:55:51 server sshd\[13601\]: Invalid user miy from 112.197.2.114 Mar 29 08:55:51 server sshd\[13601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.2.114 ... |
2020-03-29 16:05:35 |
| 176.97.48.141 | attack | SSH login attempts. |
2020-03-29 15:57:33 |
| 175.21.159.11 | attack | Unauthorised access (Mar 29) SRC=175.21.159.11 LEN=40 TTL=49 ID=38031 TCP DPT=8080 WINDOW=19554 SYN Unauthorised access (Mar 28) SRC=175.21.159.11 LEN=40 TTL=49 ID=65468 TCP DPT=8080 WINDOW=34899 SYN Unauthorised access (Mar 28) SRC=175.21.159.11 LEN=40 TTL=49 ID=22916 TCP DPT=8080 WINDOW=34899 SYN Unauthorised access (Mar 27) SRC=175.21.159.11 LEN=40 TTL=49 ID=26939 TCP DPT=8080 WINDOW=19554 SYN Unauthorised access (Mar 27) SRC=175.21.159.11 LEN=40 TTL=49 ID=40110 TCP DPT=8080 WINDOW=34899 SYN Unauthorised access (Mar 27) SRC=175.21.159.11 LEN=40 TTL=49 ID=60271 TCP DPT=8080 WINDOW=19554 SYN |
2020-03-29 16:13:57 |
| 117.34.72.48 | attack | 2020-03-29T04:07:56.046602abusebot-3.cloudsearch.cf sshd[9702]: Invalid user ejp from 117.34.72.48 port 44590 2020-03-29T04:07:56.052444abusebot-3.cloudsearch.cf sshd[9702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.72.48 2020-03-29T04:07:56.046602abusebot-3.cloudsearch.cf sshd[9702]: Invalid user ejp from 117.34.72.48 port 44590 2020-03-29T04:07:57.849386abusebot-3.cloudsearch.cf sshd[9702]: Failed password for invalid user ejp from 117.34.72.48 port 44590 ssh2 2020-03-29T04:11:19.003277abusebot-3.cloudsearch.cf sshd[10040]: Invalid user qbu from 117.34.72.48 port 40830 2020-03-29T04:11:19.008514abusebot-3.cloudsearch.cf sshd[10040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.72.48 2020-03-29T04:11:19.003277abusebot-3.cloudsearch.cf sshd[10040]: Invalid user qbu from 117.34.72.48 port 40830 2020-03-29T04:11:21.006272abusebot-3.cloudsearch.cf sshd[10040]: Failed password for invalid ... |
2020-03-29 15:47:39 |